Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/0xbitx/dedsec_ptz_strm_exploit

vulnerability that allows unauthorized control of an IP camera using the ONVIF protocol, The provided proof-of-concept code is capable capture video stream and controlling camera movement.
https://github.com/0xbitx/dedsec_ptz_strm_exploit

Last synced: about 2 months ago
JSON representation

vulnerability that allows unauthorized control of an IP camera using the ONVIF protocol, The provided proof-of-concept code is capable capture video stream and controlling camera movement.

Awesome Lists containing this project

README 

        









 DEDSEC_PTZ_STRM_EXPLOIT


DEDSEC_PTZ_STRM_EXPLOIT is a vulnerability that allows unauthorized control of an IP camera using the ONVIF protocol, The provided proof-of-concept code is capable capture video stream and controlling camera movement.



## DESCRIPTION

PTZ stands for Pan, Tilt, and Zoom, and it refers to the capabilities of a type of camera commonly known as a PTZ camera. These cameras are designed for remote control over their movement and focus. Here's what each component of PTZ represents:



- Pan: This refers to the horizontal movement of the camera. A PTZ camera can rotate left and right, allowing it to cover a wide area without physically moving the camera itself.



- Tilt: Tilt refers to the vertical movement of the camera. A PTZ camera can tilt up and down, enabling it to change its viewing angle and cover a range of vertical angles.



- Zoom: Zoom refers to the camera's ability to change its focal length, making objects appear closer or farther away. PTZ cameras often come with optical zoom capabilities, allowing them to capture distant subjects with clarity.



PTZ cameras are commonly used for surveillance, video conferencing, and live event coverage, as they offer the flexibility to adjust the camera's view remotely. This makes them particularly useful in situations where you need to monitor or capture different parts of a scene without physically repositioning the camera.



DEDSEC_PTZ_STRM_EXPLOIT is a exploit tool with the ability to send meticulously crafted code, enabling it to gain control over the target camera's movements and execute PTZ (Pan, Tilt, Zoom) commands seamlessly, all accomplished without the necessity of a username and password. This tool empowers users to manipulate camera functions and surveillance angles with precision, making it a valuable asset in various applications such as security, monitoring, and remote control scenarios.



## INSTALLATION 

    * git clone https://github.com/0xbitx/DEDSEC_PTZ_STRM_EXPLOIT.git

    * cd DEDSEC_PTZ_STRM_EXPLOIT

    * sudo apt-get install mplayer

    * sudo apt-get install xterm

    * sudo pip3 install tabulate progressbar2

    * chmod +x str dedsec_ptz_strm

    * ./dedsec_ptz_strm



### TESTED ON FOLLOWING

* Kali Linux 

* Parrot OS 

* Ubuntu

  

### TESTED ON FOLLOWING 

* [cctv camera](https://shopee.ph/Hamrol-5MP-Auto-Tracking-PTZ-Wifi-IP-Camera-Outdoor-3MP-2MP-1080P-4X-Zoom-Wireless-CCTV-Security-Camera-i.168686662.5428037998?sp_atk=414e3dca-618b-4127-b2de-19c6e4be15ac&xptdk=414e3dca-618b-4127-b2de-19c6e4be15ac) Onvif protocol 



### ERROR INSTALLING MPLAYER

      echo "deb http://in.archive.ubuntu.com/ubuntu/ focal main universe" | sudo tee -a /etc/apt/sources.list

      sudo apt-key adv --keyserver keyserver.ubuntu.com --recv-keys 3B4FE6ACC0B21F32

      sudo apt update

      sudo apt install mplayer



> [!NOTE]\

> The (capture video stream) feature requires the camera password to access real-time camera footage.



## Support



If you find my work helpful and want to support me, consider making a donation. Your contribution will help me continue working on open-source projects.



**Bitcoin Address: `36ALguYpTgFF3RztL4h2uFb3cRMzQALAcm`**



 DISCLAIMER 



I'm not responsible for anything you do with this program, so please only use it for good and educational purposes.